docker-compose.yml

# =============================================================================
# go — LLM honeypot persona
# =============================================================================

include:
  - path: ../shared/docker-compose.ollama.yml

volumes:
  honeypot-data: {}
  honeypot-loot: {}

services:
  arcp-runtime:
    build:
      context: .
      args:
        ARCP_SDK_VERSION: ${ARCP_SDK_VERSION:-latest}
        BINARY: runtime
    image: arcp-sdk-examples/go-honeypot-runtime:dev
    container_name: arcp-go-runtime
    depends_on:
      ollama:
        condition: service_healthy
    environment:
      OLLAMA_URL: ${OLLAMA_URL:-http://ollama:11434}
      OLLAMA_MODEL: ${OLLAMA_MODEL:-qwen2.5:1.5b-instruct}
      ARCP_RUNTIME_HOST: ${ARCP_RUNTIME_HOST:-0.0.0.0}
      ARCP_RUNTIME_PORT: ${ARCP_RUNTIME_PORT:-8080}
      ARCP_RUNTIME_PATH: ${ARCP_RUNTIME_PATH:-/arcp}
      ARCP_AUTH_TOKEN: ${ARCP_AUTH_TOKEN:-dev-token-change-me}
      ARCP_AGENT_NAME: ${ARCP_AGENT_NAME:-honeypot.shell}
      HONEYPOT_HOSTNAME: ${HONEYPOT_HOSTNAME:-debian-prod-04}
      HONEYPOT_MAX_TOKENS: ${HONEYPOT_MAX_TOKENS:-256}
      RUNTIME_STORE_DIR: ${RUNTIME_STORE_DIR:-/data}
      LOG_LEVEL: ${LOG_LEVEL:-info}
    volumes:
      - honeypot-data:/data
    ports:
      - "${ARCP_RUNTIME_PORT:-8080}:${ARCP_RUNTIME_PORT:-8080}"
    healthcheck:
      test: ["CMD", "wget", "-qO-", "http://127.0.0.1:${ARCP_RUNTIME_PORT:-8080}/healthz"]
      interval: 5s
      timeout: 3s
      retries: 30
      start_period: 10s

  ssh-frontend:
    build:
      context: .
      args:
        ARCP_SDK_VERSION: ${ARCP_SDK_VERSION:-latest}
        BINARY: sshfrontend
    image: arcp-sdk-examples/go-honeypot-sshfrontend:dev
    container_name: arcp-go-ssh-frontend
    depends_on:
      arcp-runtime:
        condition: service_healthy
    environment:
      ARCP_RUNTIME_URL: ws://arcp-runtime:${ARCP_RUNTIME_PORT:-8080}${ARCP_RUNTIME_PATH:-/arcp}
      ARCP_AUTH_TOKEN: ${ARCP_AUTH_TOKEN:-dev-token-change-me}
      HONEYPOT_SSH_PORT: ${HONEYPOT_SSH_PORT:-2222}
      HONEYPOT_HOSTNAME: ${HONEYPOT_HOSTNAME:-debian-prod-04}
      HONEYPOT_PER_SESSION_BUDGET_USD: ${HONEYPOT_PER_SESSION_BUDGET_USD:-0.10}
      LOG_LEVEL: ${LOG_LEVEL:-info}
    ports:
      - "${HONEYPOT_SSH_PORT:-2222}:${HONEYPOT_SSH_PORT:-2222}"

  arcp-client:
    build:
      context: .
      args:
        ARCP_SDK_VERSION: ${ARCP_SDK_VERSION:-latest}
        BINARY: client
    image: arcp-sdk-examples/go-honeypot-client:dev
    container_name: arcp-go-client
    depends_on:
      arcp-runtime:
        condition: service_healthy
    environment:
      ARCP_RUNTIME_URL: ws://arcp-runtime:${ARCP_RUNTIME_PORT:-8080}${ARCP_RUNTIME_PATH:-/arcp}
      ARCP_AUTH_TOKEN: ${ARCP_AUTH_TOKEN:-dev-token-change-me}
      HONEYPOT_DROP_DIR: ${HONEYPOT_DROP_DIR:-/loot}
      LOG_LEVEL: ${LOG_LEVEL:-info}
    volumes:
      - honeypot-loot:/loot
    stdin_open: true
    tty: true